The objective of the Center for Internet Security (CIS) is to “discover, create, validate, promote, and sustain best practice cyber defense solutions.”
The Top 20 Critical Security Controls (formerly known as the SANS Top 20 Critical Security Controls) is a prioritized list of best practices developed by the Center for Internet Security (CIS) to combat today’s most ubiquitous and severe threats.
Top security experts created it worldwide and continue to work on it, updating the list annually to keep up with the threats.
What Is CIS Top 20?
Here is a list of CIS 20 Security Controls that can help you protect your organization against cyber threats:
- Inventory and Control of Hardware Assets
- Inventory and Control of Software Assets
- Continuous Vulnerability Management
- Controlled Use of Administrative Privileges
- Secure Configuration for Hardware and Software on electronic devices, Workstations, and Servers
- Maintenance, Monitoring, and Analysis of Audit Logs
- Email and Web Browser Protections
- Malware Defense
- Limitation and Control of Network Ports, Protocols, and Services
- Data Recovery Capability
- Secure Configuration for Network Devices, such as Firewalls, Modems, and…
